All activity
Right now, AI agents share a single API key with root access to everything - databases, CRMs, payment APIs. When they hallucinate, they can delete production data, issue unauthorized refunds, or spam customers.
Features:
ā Fine-grained permission scopes (read:*, write:orders, etc.)
ā Audit mode (log violations without blocking)
ā Human-in-the-loop approvals (Slack integration)
ā Session expiry (like JWT tokens)
Open source (MIT). 3 lines of code to integrate. Works with any agent framework.
agentsudoOkta for AI agents. IAM for digital workers.
Armani Novellaleft a comment
Hey Product Hunt! š I'm Armani, and I built AgentSudo because I kept seeing the same scary pattern: companies building amazing AI agents... that they were too afraid to actually deploy. Here's what's happening: Right now, when you give an AI agent access to your systems, it's all-or-nothing. One API key with root access to everything - your database, your CRM, your payment processor, customer...
agentsudoOkta for AI agents. IAM for digital workers.